[Git][security-tracker-team/security-tracker][master] Add CVE-2018-20861/libopenmpt

Sat Aug 3 22:48:45 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
14827996 by Salvatore Bonaccorso at 2019-08-03T21:47:13Z
Add CVE-2018-20861/libopenmpt

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1191,7 +1191,11 @@ CVE-2018-20863 (cPanel before 76.0.8 allows remote attackers to execute arbitrar
 CVE-2018-20862 (cPanel before 76.0.8 unsafely performs PostgreSQL password changes (SE ...)
 	NOT-FOR-US: cPanel
 CVE-2018-20861 (libopenmpt before 0.3.11 allows a crash with certain malformed custom  ...)
-	TODO: check
+	- libopenmpt 0.3.11-1
+	NOTE: https://lib.openmpt.org/libopenmpt/2018/07/28/security-updates-0.3.11-0.2.10635-beta34-0.2.7561-beta20.5-p10-0.2.7386-beta20.3-p13/
+	NOTE: https://source.openmpt.org/browse/openmpt/trunk/?op=revision&rev=10615 (0.3.11)
+	NOTE: https://source.openmpt.org/browse/openmpt/trunk/?op=revision&rev=10616 (0.2.10635-beta34)
+	NOTE: https://source.openmpt.org/browse/openmpt/trunk/?op=revision&rev=10617 (0.2.10635-beta34)
 CVE-2018-20859 (edx-platform before 2018-07-18 allows XSS via a response to a Chemical ...)
 	NOT-FOR-US: Open edX
 CVE-2018-20858



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/148279962de69bb97ddd455443efa3794063df68

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/148279962de69bb97ddd455443efa3794063df68
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190803/db6838eb/attachment.html>
